Vulnerability Search Top
Show Search Menu
Vendor Name
プロダクト・サービス名
Title
CVE
Urgent
Important
Warning
Warning
CWE
公開-検索開始年
公開-検索開始月
公開-検索開始日
公開-検索終了年
公開-検索終了月
公開-検索終了日
レベルソート
In descending order of publication date
In descending order of update date
Number of items displayed

You can search for vulnerabilities managed by JVN (Japan Vulnerability Note) and NVD (National Vulnerability Database).
Search keywords must be entered in English otherwise will not be searched in both JVN and NVD.

To search by CWE, please refer to the CWE Overview and check the CWE number.

  • Urgent
  • Important
  • Warning
  • Low
JVN Vulnerability Information

Update Date":May 1, 2026, 10 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Impact
Show		 Exploit
PoC
Search
227921 6.8 警告 wheatblog - wB の admin/login.php における SQL インジェクションの脆弱性 - CVE-2007-3557 2012-12-20 18:19 2007-07-4 Show GitHub Exploit DB Packet Storm
227922 7.5 危険 Vastal I-Tech & Co. - Buddy Zone の view_sub_cat.php における SQL インジェクションの脆弱性 - CVE-2007-3549 2012-12-20 18:19 2007-07-3 Show GitHub Exploit DB Packet Storm
227923 7.1 危険 w3filer - W3Filer におけるスタックベースのバッファオーバーフローの脆弱性 - CVE-2007-3548 2012-12-20 18:19 2007-07-3 Show GitHub Exploit DB Packet Storm
227924 7.8 危険 qt-cute - QuickTicket の qti_checkname.php におけるディレクトリトラバーサルの脆弱性 - CVE-2007-3547 2012-12-20 18:19 2007-07-3 Show GitHub Exploit DB Packet Storm
227925 7.1 危険 warzone - Warzone 2100 Resurrection におけるバッファオーバーフローの脆弱性 - CVE-2007-3545 2012-12-20 18:19 2007-06-22 Show GitHub Exploit DB Packet Storm
227926 6.5 警告 WordPress.org - WordPress および WordPress MU の wp-app.php などにおける任意の PHP コードを実行される脆弱性 - CVE-2007-3544 2012-12-20 18:19 2007-07-3 Show GitHub Exploit DB Packet Storm
227927 6 警告 WordPress.org - WordPress および WordPress MU における任意の PHP コードを実行される脆弱性 - CVE-2007-3543 2012-12-20 18:19 2007-07-3 Show GitHub Exploit DB Packet Storm
227928 4.3 警告 PluXml - Pluxml の admin/auth.php におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3542 2012-12-20 18:19 2007-07-3 Show GitHub Exploit DB Packet Storm
227929 4.3 警告 rainworx - rwAuction Pro の search.asp におけるクロスサイトスクリプティングの脆弱性 - CVE-2007-3540 2012-12-20 18:19 2007-07-3 Show GitHub Exploit DB Packet Storm
227930 7.5 危険 qt-cute - QuickTicket およびの QuickTalk フォーラムにおける SQL インジェクションの脆弱性 CWE-89
SQLインジェクション 		CVE-2007-3539 2012-12-20 18:19 2007-07-3 Show GitHub Exploit DB Packet Storm
NVD Vulnerability Information

Update Date:May 1, 2026, 4:54 a.m.

No CVSS Level
Attach Vector		 Vendor Name Project Name Title CWE CVE Update Date Publication Date Show Affected Exploit
PoC
Search
223161 5.5 MEDIUM
Local 		toaruos_project toaruos kernel/sys/syscall.c in ToaruOS through 1.10.9 allows a denial of service upon a critical error in certain sys_sbrk allocation patterns (involving PAGE_SIZE, and a value less than PAGE_SIZE). CWE-190
 Integer Overflow or Wraparound 		CVE-2019-13048 2024-11-21 13:24 2019-06-30 Show GitHub Exploit DB Packet Storm
223162 7.8 HIGH
Local 		toaruos_project toaruos kernel/sys/syscall.c in ToaruOS through 1.10.9 has incorrect access control in sys_sysfunc case 9 for TOARU_SYS_FUNC_SETHEAP, allowing arbitrary kernel pages to be mapped into user land, leading to r… CWE-862
 Missing Authorization 		CVE-2019-13047 2024-11-21 13:24 2019-06-30 Show GitHub Exploit DB Packet Storm
223163 7.8 HIGH
Local 		toaruos_project toaruos linker/linker.c in ToaruOS through 1.10.9 has insecure LD_LIBRARY_PATH handling in setuid applications. CWE-388
 7PK - Errors 		CVE-2019-13046 2024-11-21 13:24 2019-06-30 Show GitHub Exploit DB Packet Storm
223164 8.1 HIGH
Network 		irssi irssi Irssi before 1.0.8, 1.1.x before 1.1.3, and 1.2.x before 1.2.1, when SASL is enabled, has a use after free when sending SASL login to the server. CWE-416
 Use After Free 		CVE-2019-13045 2024-11-21 13:24 2019-06-29 Show GitHub Exploit DB Packet Storm
223165 6.1 MEDIUM
Network 		mod_auth_mellon_project
oracle
fedoraproject
canonical 		mod_auth_mellon
zfs_storage_appliance_kit
fedora
ubuntu_linux 		mod_auth_mellon through 0.14.2 has an Open Redirect via the login?ReturnTo= substring, as demonstrated by omitting the // after http: in the target URL. CWE-601
Open Redirect 		CVE-2019-13038 2024-11-21 13:24 2019-06-29 Show GitHub Exploit DB Packet Storm
223166 7.8 HIGH
Local 		pandorafms pandora_fms Artica Pandora FMS 7.0 NG before 735 suffers from local privilege escalation due to improper permissions on C:\PandoraFMS and its sub-folders, allowing standard users to create new files. Moreover, t… NVD-CWE-noinfo
CVE-2019-13035 2024-11-21 13:24 2019-06-29 Show GitHub Exploit DB Packet Storm
223167 5.5 MEDIUM
Local 		flightcrew_project flightcrew An issue was discovered in FlightCrew v0.9.2 and earlier. A NULL pointer dereference occurs in GetRelativePathToNcx() or GetRelativePathsToXhtmlDocuments() when a NULL pointer is passed to xc::XMLUri… CWE-476
 NULL Pointer Dereference 		CVE-2019-13032 2024-11-21 13:24 2019-06-29 Show GitHub Exploit DB Packet Storm
223168 8.1 HIGH
Network 		lemonldap-ng
debian 		lemonldap\
debian_linux 		LemonLDAP::NG before 1.9.20 has an XML External Entity (XXE) issue when submitting a notification to the notification server. By default, the notification server is not enabled and has a "deny all" r… CWE-611
XXE 		CVE-2019-13031 2024-11-21 13:24 2019-06-29 Show GitHub Exploit DB Packet Storm
223169 8.8 HIGH
Network 		minv electronic_identification_cards_client An incorrect implementation of a local web server in eID client (Windows version before 3.1.2, Linux version before 3.0.3) allows remote attackers to execute arbitrary code (.cgi, .pl, or .php) or de… CWE-284
Improper Access Control 		CVE-2019-13028 2024-11-21 13:24 2019-06-29 Show GitHub Exploit DB Packet Storm
223170 7.5 HIGH
Network 		gnome glib The keyfile settings backend in GNOME GLib (aka glib2.0) before 2.60.0 creates directories using g_file_make_directory_with_parents (kfsb->dir, NULL, NULL) and files using g_file_replace_contents (kf… CWE-732
 Incorrect Permission Assignment for Critical Resource 		CVE-2019-13012 2024-11-21 13:24 2019-06-29 Show GitHub Exploit DB Packet Storm